（2002）Continuous Assurance of E-Business Transactions For Fraud Detection.pdfVIP

Continuous Assurance of E-Business Transactions For Fraud Detection Stuart Loh – Researcher Rodger Jamieson - Director1 SEAR: Security, E-Business, Assurance Research Group School of Information Systems Technology and Management University of New South Wales Sydney NSW 2052 Australia Ph: 61 2 9385 4414 Fax: 61 2 9662 4061 Email: r.jamieson@.au .au Abstract This paper is concerned about improving our understanding of preventing fraud in e-business transactions using continuous assurance systems. A conceptual model has been constructed to produce a generalised overview of the fraud auditing environment, and the objects and forces influencing the process. Th e second aim of this paper is aimed at evaluating the effectiveness of continuous assurance systems. Towards this goal, a specific implementation of one such system, eSCARF (electronic System Control Audit Review File) has been constructed and will be tested in the IBM WebSphere Commerce environment. This evaluation will be in the form of a case study of the usage of such a system in a real world business environment. One company will be selected for this purpose, and the eSCARF system will be integrated, after information gathering interviews, into their e-business system, and the resulting eSCARF reporting will be analysed and evaluated by the organisation’s management. Keywords Electronic Business, Continuous Assurance, Fraud Detection, E-crime, eSCARF (Electronic System Control Audit Review File) INTRODUCTION The growth of electronic business (EB) in the world has been dramatic over the past few years, with forecasts suggesting th